JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.99.26.82

194.99.26.82 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 24%: ?

24%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.99.26.82

Whois 194.99.26.82

IP Abuse Reports for 194.99.26.82:

This IP address has been reported a total of 10 times from 8 distinct sources. 194.99.26.82 was first reported on February 13th 2023, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-25 17:37:08 (17 hours ago)	Fail2Ban banned 194.99.26.82 for security violations in jail wp-armour. Log: 2026/06/25 17:37:07 [er ... show more Fail2Ban banned 194.99.26.82 for security violations in jail wp-armour. Log: 2026/06/25 17:37:07 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 194.99.26.82 \| Target: wplogin" , client: 194.99.26.82, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-06-24 23:30:06 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:29:57.133796 2026] [security2:error] [pid 3145:tid 3145] [client 194.99.26.82:24169] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|callalbany.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "callalbany.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajxodRoCpMI_HrIbu4iIMgAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-24 20:24:38 (1 day ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-04-12 16:57:42 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 12:57:35.292499 2026] [security2:error] [pid 160632:tid 160632] [client 194.99.26.82:29189] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|manaplas.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "manaplas.com"] [uri "/wp-json/wp/v2/users"] [unique_id "advO_2XTdV85VArIJqRY5wAAABg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-05-12 06:21:30 (1 year ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 194.99.26.82 2025-05-12T07:20:59+02:0 ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 194.99.26.82 2025-05-12T07:20:59+02:00 vpn Access-Reject 'drunken' station: 194.99.26.82 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-05-12T07:35:52+02:00 vpn Access-Reject 'suckling' station: 194.99.26.82 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-02-28 21:13:51 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 194.99.26.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 28 16:13:46.886129 2025] [security2:error] [pid 16734:tid 16734] [client 194.99.26.82:20437] [client 194.99.26.82] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eclipsesoftware.andrew.weigel.name"] [uri "/.env"] [unique_id "Z8InCqLCpql1uawYaQUUmwAAADU"], referer: https://tasamm.com/about/eee11.html show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-22 03:30:08 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 hostseries	2024-06-04 19:57:53 (2 years ago)	Trigger: LF_DISTATTACK	Brute-Force
🇫🇷 rellik	2023-10-12 18:26:00 (2 years ago)	Admin Connection Attempt	Hacking Web App Attack
🇺🇸 SiliSoftware	2023-02-13 01:42:11 (3 years ago)	/blog/wp-content/themes/Attitude/go.php?https://ya.ru	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 188.72.40.6

🇺🇸 162.216.149.203

🇫🇮 147.185.133.159

🇺🇸 98.97.84.64

🇸🇬 45.78.198.199

🇬🇧 35.203.211.56

🇺🇸 173.244.41.223

🇫🇷 143.244.57.86

🇺🇸 66.132.224.233

🇷🇺 46.160.165.239

🇺🇸 45.131.194.189

🇰🇷 220.124.231.28

🇺🇸 162.144.88.94

🇸🇬 146.190.86.30

🇮🇷 94.182.152.148

🇸🇬 43.134.130.2

🇳🇱 195.178.110.228

🇳🇴 185.12.59.117

🇦🇲 176.32.193.16

🇱🇹 62.60.130.219